Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TANET/A0I7_RQO-J2eEkKth8siF8-JA1M.roa
File: A0I7_RQO-J2eEkKth8siF8-JA1M.roa (raw, json)
Hash identifier: IUEvkyKKFaaqXvqGp791FyMMWZEzgcvi7iOZ6UFGnLo=
Subject key identifier: 03:42:3B:FD:14:0E:F8:9D:9E:12:42:AD:87:CB:22:17:CF:89:03:53
Certificate issuer: /CN=E1A88C34D246EF7C2A7C1AC5FE97B262BC48178E
Certificate serial: 0EE9
Authority key identifier: E1:A8:8C:34:D2:46:EF:7C:2A:7C:1A:C5:FE:97:B2:62:BC:48:17:8E
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/A0I7_RQO-J2eEkKth8siF8-JA1M.roa
Signing time: Mon 10 Feb 2025 14:16:12 +0000
ROA not before: Mon 10 Feb 2025 14:16:12 +0000
ROA not after: Tue 26 Aug 2025 01:57:03 +0000
asID: 1659
IP address blocks: 120.107.0.0/16 maxlen: 16
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3817 (0xee9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=E1A88C34D246EF7C2A7C1AC5FE97B262BC48178E
Validity
Not Before: Feb 10 14:16:12 2025 GMT
Not After : Aug 26 01:57:03 2025 GMT
Subject: CN=03423BFD140EF89D9E1242AD87CB2217CF890353
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:18:f9:18:68:20:4e:8d:c6:e6:c0:68:a8:c9:
17:53:93:16:17:f4:e2:30:d5:95:ea:2a:fe:dc:6f:
06:9b:84:c5:cd:78:f7:c4:8d:86:a3:f5:9f:e5:84:
a3:3f:70:3f:18:bf:b4:20:f3:71:95:72:f2:24:31:
34:90:3b:4f:c9:9b:a9:a3:87:cc:a7:f9:b2:13:3f:
f7:4e:9c:23:ae:32:33:78:67:fd:8b:46:2e:72:3a:
47:56:14:d9:ef:e4:0e:36:79:7e:7e:54:89:e1:4e:
59:f8:66:bf:e8:83:ba:e1:88:da:73:64:fb:81:1e:
c9:05:34:04:47:2b:f1:79:6f:67:39:da:db:c8:3d:
fd:5c:1f:d5:28:13:6b:a0:7d:0e:9d:b8:10:e9:70:
03:bd:ff:d9:98:9e:47:24:b0:b6:d9:96:71:3d:7b:
5b:89:da:09:f9:c5:4b:f7:26:03:67:58:d3:04:e1:
97:f9:c7:87:14:1a:57:c3:b2:82:15:32:f3:98:be:
1a:24:15:f6:f1:49:8d:0e:44:a5:e6:6f:4f:fb:bd:
42:4b:9c:fc:5b:0c:2c:f8:87:a0:cd:fc:68:62:8c:
43:a2:af:cc:76:ee:f1:95:90:77:d7:4e:f1:67:4d:
32:28:f7:e6:5d:52:c0:fa:32:e8:69:36:88:6e:59:
a0:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
03:42:3B:FD:14:0E:F8:9D:9E:12:42:AD:87:CB:22:17:CF:89:03:53
X509v3 Authority Key Identifier:
keyid:E1:A8:8C:34:D2:46:EF:7C:2A:7C:1A:C5:FE:97:B2:62:BC:48:17:8E
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/4aiMNNJG73wqfBrF_peyYrxIF44.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/A0I7_RQO-J2eEkKth8siF8-JA1M.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
120.107.0.0/16
Signature Algorithm: sha256WithRSAEncryption
7e:3c:0e:82:82:11:25:2a:68:3d:15:48:36:bc:a8:dd:f1:85:
3b:30:96:0a:38:9d:ee:55:39:60:12:5d:f6:98:94:d0:5e:08:
cc:43:8b:a3:5d:44:a3:36:5d:50:55:b1:99:c3:9e:ed:03:34:
00:c7:c6:24:f1:1d:ad:8a:89:d0:58:8a:a5:e9:bf:52:80:87:
4f:c1:10:6c:d0:eb:84:3f:0d:66:85:f2:e8:71:fa:25:56:83:
68:ed:7b:85:6f:ce:19:81:1d:18:7c:42:33:fb:8c:07:00:75:
c8:23:e2:66:1d:57:e2:9a:fd:53:21:74:07:f2:73:a5:b6:10:
2a:60:fc:ea:e4:ea:3d:1f:ce:7b:df:b7:21:27:5e:d7:70:43:
ee:fc:06:8d:4a:55:52:46:89:17:06:59:7f:52:58:1b:45:3f:
0f:c4:99:cf:b4:40:17:38:77:11:27:24:b0:08:6c:8a:58:cf:
70:a7:98:49:27:d3:51:6c:61:32:5e:9f:80:96:cb:4e:3f:cb:
d4:a9:1b:df:b1:c7:68:28:f7:88:fc:f2:dc:23:74:31:81:72:
4f:34:5e:39:0a:6a:86:56:d1:5c:c3:f1:de:c3:28:9c:5d:21:
5f:02:e5:f1:a2:de:e4:de:a5:5a:00:1a:46:dc:c0:47:c6:26:
37:1a:80:f0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 16:39:32 2025 by rpki-client